8e6 Technologies R3000 manual Ldap protocol

CHAPTER 1: INTRODUCTION AUTHENTICATION OPERATIONS

NOTE: For information on SMB Signing compatibility with the

R3000, refer to the chart in Appendix D: Disable SMB Signing Requirements.

LDAP protocol

LDAP is a directory service protocol that stores entries (Distinguished Names) in a domain’s directory using a hier- archical tree structure. The LDAP directory service is based on a client/server model protocol to give the client access to resources on the network.

When a client connects to a server and asks it a question, the server responds with an answer and/or with a pointer to the server that stores the requested information (typically, another LDAP server). No matter which LDAP server the client accesses, the same view of the directory is “seen.”

The LDAP specification defines both the communication protocol and the structure, or schema, to a lesser degree. There is an Internet Assigned Network Authority (IANA) standard set that all LDAP directories should contain. Novell and Microsoft both have additional schema definitions that extend the default setups.

Most server operating systems now support some imple- mentations of LDAP authentication. The Microsoft Active Directory LDAP-based model became available with the release of Windows 2000.